changes_fields:
Architecture: armhf
Binary: apt libapt-pkg5.0 libapt-inst2.0 apt-doc libapt-pkg-dev libapt-pkg-doc apt-utils
apt-transport-https
Changed-By: Julian Andres Klode <jak@debian.org>
Changes: |2-
apt (1.4.11) stretch-security; urgency=high
.
* SECURITY UPDATE: Integer overflow in parsing (LP: #1899193)
- apt-pkg/contrib/arfile.cc: add extra checks.
- apt-pkg/contrib/tarfile.cc: limit tar item sizes to 128 GiB
- apt-pkg/deb/debfile.cc: limit control file sizes to 64 MiB
- test/*: add tests.
- CVE-2020-27350
* Additional hardening:
- apt-pkg/contrib/tarfile.cc: Limit size of long names and links to 1 MiB
+ * Fix autopkgtest regression in 1.8.2.1 security update
Checksums-Sha1:
- name: apt-dbgsym_1.4.11_armhf.deb
sha1: ae977b7d87da910492602b2f46d4a3d71bfa397c
size: '4346822'
- name: apt-transport-https-dbgsym_1.4.11_armhf.deb
sha1: 75e9951ae6ea7bd513e753b211a28005f47379f4
size: '281490'
- name: apt-transport-https_1.4.11_armhf.deb
sha1: 5a6634d6815feeb1fc619407e569d63f15677826
size: '167208'
- name: apt-utils-dbgsym_1.4.11_armhf.deb
sha1: 77fe8fa96eae2cc5dc97fcec709c12ccd65f5202
size: '1250098'
- name: apt-utils_1.4.11_armhf.deb
sha1: 49b40813bc6b7d765e033513f8ab37a823731b40
size: '398264'
- name: apt_1.4.11_armhf.buildinfo
sha1: 1090dca340f2630e86167a3173a187ae3b70b68d
size: '9410'
- name: apt_1.4.11_armhf.deb
sha1: a3972ca3c878a71682b80c094a5bd08ca723a195
size: '1199146'
- name: libapt-inst2.0-dbgsym_1.4.11_armhf.deb
sha1: b030d226df44d4d736765e9a5cb0be9ee840cbdb
size: '220494'
- name: libapt-inst2.0_1.4.11_armhf.deb
sha1: 807ebd33e26263017e683c2d84fb0bb698c10c10
size: '189200'
- name: libapt-pkg-dev_1.4.11_armhf.deb
sha1: 827eaa4d354eb0bdd04653ff00e59d43f577ea8f
size: '235546'
- name: libapt-pkg5.0-dbgsym_1.4.11_armhf.deb
sha1: d44aeaf5d2c271f4ecd4dac2fa2e69c7a1193073
size: '5898664'
- name: libapt-pkg5.0_1.4.11_armhf.deb
sha1: 87e6c1e9bed08de9834a2c14b27a02a60681e5f5
size: '851656'
Checksums-Sha256:
- name: apt-dbgsym_1.4.11_armhf.deb
sha256: 6637c8c4fc2be03f0c9c12ab4bc48398e17a56336090eb2d18a35fcc853ef272
size: '4346822'
- name: apt-transport-https-dbgsym_1.4.11_armhf.deb
sha256: 76782751670f976cc18cd37349a3b27dba0d4bb8a7acc9a2cc6bda9d4a9de330
size: '281490'
- name: apt-transport-https_1.4.11_armhf.deb
sha256: c13517d75090279f9cc10507b4ec895f31574ad1b59bf469020cc8a9c4e87c49
size: '167208'
- name: apt-utils-dbgsym_1.4.11_armhf.deb
sha256: ab3ba637ff07c3e671b1eb0141918e186d98d7b4d2e19204c33fb3f72a13d559
size: '1250098'
- name: apt-utils_1.4.11_armhf.deb
sha256: 25b1cca28d5ce89cc13b30d2547c4d22297dc48c1f5e1753add68fa2ca7026b2
size: '398264'
- name: apt_1.4.11_armhf.buildinfo
sha256: 79afc3227145658d1e28fd1773bdf8c2d6aadbae56fff6770ece4fe74bd0eefd
size: '9410'
- name: apt_1.4.11_armhf.deb
sha256: ebafdad4249894e650827ecf90b305763128455693547ee18715ae9f16c81734
size: '1199146'
- name: libapt-inst2.0-dbgsym_1.4.11_armhf.deb
sha256: 78b185cd563f3a9d4b9d973cdbb634966c04d2f79510b4ff1d7d108aff14c927
size: '220494'
- name: libapt-inst2.0_1.4.11_armhf.deb
sha256: 0b827b247e23727d00f14bd67f83a5e6793dc432cb05fcbd3fded689f22d9e27
size: '189200'
- name: libapt-pkg-dev_1.4.11_armhf.deb
sha256: e5468d3b028d079626356e020dadfc55fc61c3d30f7c1faa139dc0030e3c916d
size: '235546'
- name: libapt-pkg5.0-dbgsym_1.4.11_armhf.deb
sha256: 1e2407e2fb3ab1356c98c58be45e585b16c190d6fc5e3f8ab6c587bafcdcbc07
size: '5898664'
- name: libapt-pkg5.0_1.4.11_armhf.deb
sha256: 75f369ce4ccdf0d4ef6daf53d8ca392c98840881cbe1f0691cc06805368df9d7
size: '851656'
Date: Mon, 07 Dec 2020 13:45:23 +0100
Description: |2-
apt - commandline package manager
apt-doc - documentation for APT
apt-transport-https - https download transport for APT
apt-utils - package management related utility programs
libapt-inst2.0 - deb package format runtime library
libapt-pkg-dev - development files for APT's libapt-pkg and libapt-inst
libapt-pkg-doc - documentation for APT development
libapt-pkg5.0 - package management runtime library
Distribution: stretch
Files:
- md5sum: 6c7b4ef07a4ba93295a036b484bff340
name: apt-dbgsym_1.4.11_armhf.deb
priority: extra
section: debug
size: '4346822'
- md5sum: 9fb7e9f33d7332b612281f25a605719d
name: apt-transport-https-dbgsym_1.4.11_armhf.deb
priority: extra
section: debug
size: '281490'
- md5sum: cba9325b2d0fb8116daaa53a6e7dd112
name: apt-transport-https_1.4.11_armhf.deb
priority: optional
section: admin
size: '167208'
- md5sum: 35f30ac10363605b7d4d4f2dc10496dd
name: apt-utils-dbgsym_1.4.11_armhf.deb
priority: extra
section: debug
size: '1250098'
- md5sum: 28b990ecf51ff2362bb76d1fedb194ef
name: apt-utils_1.4.11_armhf.deb
priority: important
section: admin
size: '398264'
- md5sum: b440fd4e409b14f1636d3a8d5b12082b
name: apt_1.4.11_armhf.buildinfo
priority: important
section: admin
size: '9410'
- md5sum: fcb4bae4279310583e27470c96f276a6
name: apt_1.4.11_armhf.deb
priority: important
section: admin
size: '1199146'
- md5sum: 9267a2a420b68a5f67c8e01fb92e3851
name: libapt-inst2.0-dbgsym_1.4.11_armhf.deb
priority: extra
section: debug
size: '220494'
- md5sum: 67875472923679082ffaafd87e2f08b9
name: libapt-inst2.0_1.4.11_armhf.deb
priority: important
section: libs
size: '189200'
- md5sum: bfa4a3c3fc110bfe29764c97dd8bd9d0
name: libapt-pkg-dev_1.4.11_armhf.deb
priority: optional
section: libdevel
size: '235546'
- md5sum: ce35a44ef5875238aeeb981d3bedb396
name: libapt-pkg5.0-dbgsym_1.4.11_armhf.deb
priority: extra
section: debug
size: '5898664'
- md5sum: 78e3ba9b9557a9f1b9604a7ad2d78f21
name: libapt-pkg5.0_1.4.11_armhf.deb
priority: important
section: libs
size: '851656'
Format: '1.8'
Maintainer: APT Development Team <deity@lists.debian.org>
Source: apt
Urgency: high
Version: 1.4.11
type: dpkg